From 572eb2c2cdb9b6277e5243194b9d8202770975c0 Mon Sep 17 00:00:00 2001
From: "E.Alamo" <erosdelalamo@gmail.com>
Date: Sun, 27 May 2018 18:27:00 +0200
Subject: [PATCH] Prevent access to privacy when GDPR is not enabled

---
 src/User/Controller/SettingsController.php | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/src/User/Controller/SettingsController.php b/src/User/Controller/SettingsController.php
index 74b7cde..d4a3a3d 100644
--- a/src/User/Controller/SettingsController.php
+++ b/src/User/Controller/SettingsController.php
@@ -156,6 +156,9 @@ class SettingsController extends Controller
 
     public function actionPrivacy()
     {
+        if (!$this->module->enableGDPRcompliance)
+            throw new NotFoundHttpException();
+
         return $this->render('privacy', [
             'module' => $this->module
         ]);